firepass network access to corporate VLAN

Question

Hi everyone, 
&nbsp;  
&nbsp; I have a question about the network access mode of the firepass vpn solution. 
&nbsp; If the firepass have an interface on our coporate VLAN (subnet : 192.168.100.0/24), is it possible to connect users directly (with the network acces) to this vlan without NAPT (with the same ippool than the corporate vlan but with different ip address range).  
&nbsp; For information the default gateway of the corporate VLAN is not the firepass. 
&nbsp;  
&nbsp; Thanks in advance for your answer. 
&nbsp;  
&nbsp;

mike_ho · Answer

It does not look like it. 
&nbsp;  
&nbsp; Log on to your Firepass admin interface then go to Network Access -&gt; Global settings -&gt; and click "Help" to see the help text for this topic.  It is "Deciding on NAPT or virtual subnet". 
&nbsp;  
&nbsp; The help text indicates that you can turn off NAPT, but the Firepass won't simply bridge the Network Access users onto your corporate LAN.  If you use the same address pool for the Firepass as you have on your LAN, you will have problems.  You could on the other hand assign a new subnet to Network Access users and allow access to the LAN from that new subnet.

Forum Discussion

firepass network access to corporate VLAN

1 Reply

Recent Discussions

enable tls1.2 on management interface on F5 ltm running version 10.x

[ASM] - what is "Browser Challenge file" ?

SMS server with BIGIP

F5 terminal - help to run commands - disk space full

Can iRule be used to perform exception of IPI category based on Geolocation

Related Content

What is Multi-Cloud Networking?

Community Learning Path: Multi-Cloud Networking

Demo Guide & Video Series for F5 Distributed Cloud Network Connect (Multi-Cloud Networking)

SteganoAmor, Fake IP Scanner, MITRE Corporation Breach - April 14-20, 2024 - This Week in Security

A complete Multi-Cloud Networking walkthrough with F5 Distributed Cloud